Vulnerabilities > Swftools

DATE CVE VULNERABILITY TITLE RISK
2024-01-19 CVE-2024-22920 Use After Free vulnerability in Swftools 0.9.2
swftools 0.9.2 was discovered to contain a heap-use-after-free via the function bufferWriteData in swftools/lib/action/compile.c.
local
low complexity
swftools CWE-416
7.8
7.8
2024-01-11 CVE-2023-37644 Out-of-bounds Write vulnerability in Swftools 0.9.2
SWFTools 0.9.2 772e55a allows attackers to trigger a large memory-allocation attempt via a crafted document, as demonstrated by pdf2swf.
local
low complexity
swftools CWE-787
5.5
5.5
2023-04-27 CVE-2023-29950 Out-of-bounds Write vulnerability in Swftools 0.9.2
swfrender v0.9.2 was discovered to contain a heap buffer overflow in the function enumerateUsedIDs_fillstyle at modules/swftools.c
local
low complexity
swftools CWE-787
5.5
5.5
2023-04-04 CVE-2023-26991 Use After Free vulnerability in Swftools 0.9.2
SWFTools v0.9.2 was discovered to contain a stack-use-after-scope in the swf_ReadSWF2 function in lib/rfxswf.c.
local
low complexity
swftools CWE-416
7.8
7.8
2023-03-23 CVE-2023-27249 Out-of-bounds Write vulnerability in Swftools 0.9.2
swfdump v0.9.2 was discovered to contain a heap buffer overflow in the function swf_GetPlaceObject at swfobject.c.
local
low complexity
swftools CWE-787
5.5
5.5
2023-02-24 CVE-2022-46440 Unspecified vulnerability in Swftools 0.9.2
ttftool v0.9.2 was discovered to contain a segmentation violation via the readU16 function at ttf.c.
local
low complexity
swftools
5.5
5.5
2022-10-13 CVE-2022-35080 Out-of-bounds Write vulnerability in Swftools 20211216
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via png_load at /lib/png.c.
local
low complexity
swftools CWE-787
5.5
5.5
2022-10-13 CVE-2022-35081 Out-of-bounds Write vulnerability in Swftools 20211216
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via png_read_header at /src/png2swf.c.
local
low complexity
swftools CWE-787
5.5
5.5
2022-09-23 CVE-2022-35091 Incorrect Comparison vulnerability in Swftools 20211216
SWFTools commit 772e55a2 was discovered to contain a floating point exception (FPE) via DCTStream::readMCURow() at /xpdf/Stream.cc.ow()
local
low complexity
swftools CWE-697
5.5
5.5
2022-09-23 CVE-2022-35092 Out-of-bounds Write vulnerability in Swftools 20211216
SWFTools commit 772e55a2 was discovered to contain a segmentation violation via convert_gfxline at /gfxpoly/convert.c.
local
low complexity
swftools CWE-787
5.5
5.5